제출 #618946: code-projects Church Donation System V1.0 Unrestricted Upload정보

제목code-projects Church Donation System V1.0 Unrestricted Upload
설명During the security assessment of "Church Donation System", I detected a critical unrestricted file upload vulnerability in the "/members/admin_pic.php" file. This vulnerability is attributed to the insufficient validation of uploaded files. Attackers can upload arbitrary files by bypassing file extension checks, MIME type validation, or content inspection. This enables them to execute unauthorized code on the server, posing a significant threat. Immediate corrective measures are required to safeguard system security and protect business data.
원천⚠️ https://github.com/n0name-yang/myCVE/issues/16
사용자
 n0name (UID 82970)
제출2025. 07. 19. PM 01:03 (12 개월 ago)
모더레이션2025. 07. 21. AM 08:30 (2 days later)
상태수락
VulDB 항목317060 [code-projects Church Donation System 1.0 /members/admin_pic.php image 권한 상승]
포인트들20

Do you want to use VulDB in your project?

Use the official API to access entries easily!